afc94fca7c9c6ba282a5e2ea3e8c0c24_JaffaCakes118

General

Target

afc94fca7c9c6ba282a5e2ea3e8c0c24_JaffaCakes118
Size

115KB
MD5

afc94fca7c9c6ba282a5e2ea3e8c0c24
SHA1

56c5815a6b75c22ffb072ef3b666a9c31a7087c0
SHA256

2d32cecb5832dbd016a692ecf222325750b1951152661fd13aa611259bf2f05c
SHA512

51a18eed40d39ba6709df63facc52d311162ef6b3abe920a28b5f72f382bfb6cc786b3096516e5629a69556cd6f6696a2a25b7df05fd17ee4486dcf097a1d185
SSDEEP

3072:atF0cYRaPRbxsfI/kKAKh1Jd/cBWaqV/nN8j8f:O0VaTlGa/n

Score

3^/10

Malware Config

Signatures

Unsigned PE 1 IoCs

Checks for missing Authenticode signature.

resource
afc94fca7c9c6ba282a5e2ea3e8c0c24_JaffaCakes118

Files

afc94fca7c9c6ba282a5e2ea3e8c0c24_JaffaCakes118
.exe windows:5 windows x86 arch:x86

5ccc4d3cef63328329bf6ff67410c80d

Headers

File Characteristics

IMAGE_FILE_RELOCS_STRIPPED
IMAGE_FILE_EXECUTABLE_IMAGE
IMAGE_FILE_32BIT_MACHINE

Imports

gdi32

DeleteDC
RectVisible
GetDeviceCaps
SetTextAlign
SelectObject
SetMapMode
LineTo
PatBlt
CreateCompatibleDC
RestoreDC
DeleteObject
GetTextMetricsA
SetTextColor
SaveDC
CreatePalette
GetStockObject
GetClipBox
CreateSolidBrush
CreateFontIndirectA
GetPixel
CreatePen
SetPixel
SetStretchBltMode
SelectPalette
GetObjectA

user32

TranslateMessage
GetSystemMetrics
CharNextA
GetDesktopWindow
GetParent

kernel32

GetVersion
GetProcessHeap
lstrlenW
GetCommandLineA
GetDriveTypeA
lstrcmpiW
GetCurrentProcessId
GetACP
GetTickCount
GetModuleHandleA
GetUserDefaultLangID
GetCommandLineW
SetCurrentDirectoryA
GetWindowsDirectoryA
CopyFileA
GetThreadLocale
GetModuleHandleW
lstrlenA
GetConsoleOutputCP
QueryPerformanceCounter
GetStartupInfoA
GetCurrentThreadId
lstrcmpA
GetOEMCP
GlobalFindAtomA
lstrcmpiA
RemoveDirectoryA
IsDebuggerPresent
RemoveDirectoryW
GlobalFindAtomW
DeleteFileW
DeleteFileA
GetCurrentThread
MulDiv
VirtualAlloc
VirtualFree

glu32

gluQuadricCallback

Sections

.text
Size: 14KB - Virtual size: 13KB

IMAGE_SCN_CNT_CODE
IMAGE_SCN_MEM_EXECUTE
IMAGE_SCN_MEM_READ

.rdata
Size: 8KB - Virtual size: 7KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

.data
Size: 79KB - Virtual size: 79KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ
IMAGE_SCN_MEM_WRITE

.rsrc
Size: 13KB - Virtual size: 12KB

IMAGE_SCN_CNT_INITIALIZED_DATA
IMAGE_SCN_MEM_READ

Sharing

General

Malware Config

Signatures

Files

5ccc4d3cef63328329bf6ff67410c80d

Headers

File Characteristics

Imports

gdi32

user32

kernel32

glu32

Sections

.text Size: 14KB - Virtual size: 13KB

.rdata Size: 8KB - Virtual size: 7KB

.data Size: 79KB - Virtual size: 79KB

.rsrc Size: 13KB - Virtual size: 12KB

.text
Size: 14KB - Virtual size: 13KB

.rdata
Size: 8KB - Virtual size: 7KB

.data
Size: 79KB - Virtual size: 79KB

.rsrc
Size: 13KB - Virtual size: 12KB